Responsive Filemanager Security Vulnerabilities and Issues — Responsive Filemanager CVE List

Lucene search

TecrailResponsive Filemanager

5 matches found

CVE•added 2020/03/07 12:15 a.m.•170 views

CVE-2020-10212

upload.php in Responsive FileManager 9.13.4 and 9.14.0 allows SSRF via the url parameter because file-extension blocking is mishandled and because it is possible for a DNS hostname to resolve to an internal IP address. For example, an SSRF attempt may succeed if a .ico filename is added to the PATH...

9.8CVSS9.3AI score0.92876EPSS

CVE•added 2020/03/14 2:15 p.m.•135 views

CVE-2020-10567

An issue was discovered in Responsive Filemanager through 9.14.0. In the ajax_calls.php file in the save_img action in the name parameter, there is no validation of what kind of extension is sent. This makes it possible to execute PHP code if a legitimate JPEG image contains this code in the EXIF d...

9.8CVSS9.5AI score0.1787EPSS

CVE•added 2018/08/03 6:29 p.m.•65 views

CVE-2018-14728

upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.

9.8CVSS9.2AI score0.92876EPSS

CVE•added 2023/06/28 3:15 p.m.•58 views

CVE-2022-44276

In Responsive Filemanager

9.8CVSS9.4AI score0.254EPSS

CVE•added 2022/07/25 5:15 a.m.•34 views

CVE-2017-20145

A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 9.11.0 is able to address this issue....

9.8CVSS8.1AI score0.00469EPSS